CVE-2013-4128

Опубликовано: 16 авг. 2013

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00688

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-16

Связанные уязвимости

CVE-2013-4128

ubuntu

больше 12 лет назад

Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client.

CVE-2013-4128

redhat

больше 12 лет назад

Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client.

CVE-2013-4128

debian

больше 12 лет назад

Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not pro ...

GHSA-mj2q-jjfm-w2rq

github

больше 3 лет назад

Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client.

EPSS

Процентиль: 71%

0.00688

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-16